WO2016190918A3 - Multiple protocol transaction encryption - Google Patents

Multiple protocol transaction encryption Download PDF

Info

Publication number
WO2016190918A3
WO2016190918A3 PCT/US2016/015158 US2016015158W WO2016190918A3 WO 2016190918 A3 WO2016190918 A3 WO 2016190918A3 US 2016015158 W US2016015158 W US 2016015158W WO 2016190918 A3 WO2016190918 A3 WO 2016190918A3
Authority
WO
WIPO (PCT)
Prior art keywords
transaction
protocol
mobile device
data
multiple protocol
Prior art date
Application number
PCT/US2016/015158
Other languages
French (fr)
Other versions
WO2016190918A2 (en
Inventor
Abhishek GUGLANI
Original Assignee
Visa International Service Association
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Visa International Service Association filed Critical Visa International Service Association
Priority to CN201680007334.9A priority Critical patent/CN107209889B/en
Priority to US15/539,875 priority patent/US20180268403A1/en
Publication of WO2016190918A2 publication Critical patent/WO2016190918A2/en
Publication of WO2016190918A3 publication Critical patent/WO2016190918A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3276Short range or proximity payments by means of M-devices using a pictured code, e.g. barcode or QR-code, being read by the M-device
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3215Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a plurality of channels
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3674Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/102Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measure for e-commerce
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/77Graphical identity

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Accounting & Taxation (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Finance (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Cash Registers Or Receiving Machines (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Embodiments of the invention are directed to systems, apparatus, and methods for multiple protocol transaction encryption. In one embodiment, a mobile device can initiate a transaction in accordance with a first transaction protocol, the first transaction protocol being associated with contactless unidirectional communication. The mobile device can receive transaction data for the transaction in accordance with a second transaction protocol, the transaction data being received from an access device. The mobile device can perform further processing using the received transaction data. In some embodiments, the mobile device may generate a cryptogram from one or more data included in the transaction data. The cryptogram may be provided to the access device via the first transaction protocol.
PCT/US2016/015158 2015-01-27 2016-01-27 Multiple protocol transaction encryption WO2016190918A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201680007334.9A CN107209889B (en) 2015-01-27 2016-01-27 Multi-protocol transaction encryption
US15/539,875 US20180268403A1 (en) 2015-01-27 2016-01-27 Multiple protocol transaction encryption

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201562108441P 2015-01-27 2015-01-27
US62/108,441 2015-01-27

Publications (2)

Publication Number Publication Date
WO2016190918A2 WO2016190918A2 (en) 2016-12-01
WO2016190918A3 true WO2016190918A3 (en) 2017-01-05

Family

ID=57393530

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2016/015158 WO2016190918A2 (en) 2015-01-27 2016-01-27 Multiple protocol transaction encryption

Country Status (3)

Country Link
US (1) US20180268403A1 (en)
CN (1) CN107209889B (en)
WO (1) WO2016190918A2 (en)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150348024A1 (en) * 2014-06-02 2015-12-03 American Express Travel Related Services Company, Inc. Systems and methods for provisioning transaction data to mobile communications devices
CN105678553A (en) * 2015-08-05 2016-06-15 腾讯科技(深圳)有限公司 Method, device and system for processing order information
US10853796B1 (en) * 2015-12-22 2020-12-01 United Services Automobile Association (Usaa) Automated application workflows based on signal detection
US11182793B2 (en) * 2016-03-02 2021-11-23 American Express Travel Related Services Company, Inc. Systems and methods for transaction account tokenization
WO2018136494A1 (en) * 2017-01-17 2018-07-26 Visa International Service Association Binding cryptogram with protocol characteristics
CN107423974A (en) * 2017-08-15 2017-12-01 阿里巴巴集团控股有限公司 Intellectual broadcast method and apparatus
US10956905B2 (en) * 2017-10-05 2021-03-23 The Toronto-Dominion Bank System and method of session key generation and exchange
US11921615B2 (en) 2017-12-21 2024-03-05 Mastercard International Corporation Computer-implemented methods, computer-readable media and electronic devices for processing test electronic transactions
US10956889B2 (en) * 2018-04-18 2021-03-23 Mastercard International Incorporated Method and system for contactless payment via quick response code
CN109767205B (en) * 2018-12-11 2024-05-28 瞬联软件科技(北京)有限公司 Two-dimension code payment safety payment method and system without secondary authentication
US11244312B2 (en) * 2019-11-13 2022-02-08 Bank Of America Corporation One-time abstraction coding for resource deployment
US10825017B1 (en) * 2020-04-20 2020-11-03 Capital One Services, Llc Authorizing a payment with a multi-function transaction card
US20220391896A1 (en) * 2021-06-02 2022-12-08 American Express Travel Related Services Company, Inc. Hosted point-of-sale service

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20120020804A (en) * 2010-08-31 2012-03-08 비씨카드(주) Method and system of payment, and mobile terminal thereof
KR20140007781A (en) * 2013-12-31 2014-01-20 이광훈 Mobile point-of-sale system for reverse settlement, and method thereof
US20140230039A1 (en) * 2013-02-08 2014-08-14 Gyan Prakash Barcode authentication for resource requests
US20140233545A1 (en) * 2013-02-21 2014-08-21 Digi International Inc. Establishing secure connection between mobile computing device and wireless hub using security credentials obtained from remote security credential server
US20140279556A1 (en) * 2013-03-12 2014-09-18 Seth Priebatsch Distributed authenticity verification for consumer payment transactions

Family Cites Families (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140089120A1 (en) * 2005-10-06 2014-03-27 C-Sam, Inc. Aggregating multiple transaction protocols for transacting between a plurality of distinct payment acquiring devices and a transaction acquirer
CN102147948A (en) * 2010-02-05 2011-08-10 ***通信集团公司 System and method for generating information interaction voucher
GB2473154B (en) * 2010-11-16 2011-06-15 Martin Tomlinson Public key encryption system using error correcting codes
WO2012070251A1 (en) * 2010-11-25 2012-05-31 パナソニック株式会社 Communication device
US9137250B2 (en) * 2011-04-29 2015-09-15 Stephen Lesavich Method and system for electronic content storage and retrieval using galois fields and information entropy on cloud computing networks
US20140006259A1 (en) * 2012-06-28 2014-01-02 Bank Of America Corporation System for item level payment vehicle suggestion
US20160019536A1 (en) * 2012-10-17 2016-01-21 Royal Bank Of Canada Secure processing of data
CA3126471A1 (en) * 2012-10-17 2014-04-17 Royal Bank Of Canada Virtualization and secure processing of data
US20140207974A1 (en) * 2013-01-19 2014-07-24 Tata Consultancy Services Limited Systems and methods for managing communication device capabilities
US9407619B2 (en) * 2013-03-17 2016-08-02 NXT-ID, Inc. Un-password™: risk aware end-to-end multi-factor authentication via dynamic pairing
CA2851895C (en) * 2013-05-08 2023-09-26 The Toronto-Dominion Bank Person-to-person electronic payment processing
EP2997531B1 (en) * 2013-05-15 2019-08-28 Visa International Service Association Methods and systems for provisioning payment credentials
CN103426091B (en) * 2013-07-25 2016-12-28 刁水带 client information interaction method and system
GB2516686B (en) * 2013-07-30 2018-02-07 Paxton Access Ltd Communication method and system
US10496986B2 (en) * 2013-08-08 2019-12-03 Visa International Service Association Multi-network tokenization processing
US9953311B2 (en) * 2013-09-25 2018-04-24 Visa International Service Association Systems and methods for incorporating QR codes
US10515358B2 (en) * 2013-10-18 2019-12-24 Visa International Service Association Contextual transaction token methods and systems
US9256881B2 (en) * 2013-11-08 2016-02-09 Vattaca, LLC Authenticating and managing item ownership and authenticity
KR102293822B1 (en) * 2013-12-19 2021-08-26 비자 인터네셔널 서비스 어소시에이션 Cloud-based transactions methods and systems
SG10201810140QA (en) * 2014-09-26 2018-12-28 Visa Int Service Ass Remote server encrypted data provisioning system and methods

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20120020804A (en) * 2010-08-31 2012-03-08 비씨카드(주) Method and system of payment, and mobile terminal thereof
US20140230039A1 (en) * 2013-02-08 2014-08-14 Gyan Prakash Barcode authentication for resource requests
US20140233545A1 (en) * 2013-02-21 2014-08-21 Digi International Inc. Establishing secure connection between mobile computing device and wireless hub using security credentials obtained from remote security credential server
US20140279556A1 (en) * 2013-03-12 2014-09-18 Seth Priebatsch Distributed authenticity verification for consumer payment transactions
KR20140007781A (en) * 2013-12-31 2014-01-20 이광훈 Mobile point-of-sale system for reverse settlement, and method thereof

Also Published As

Publication number Publication date
US20180268403A1 (en) 2018-09-20
CN107209889A (en) 2017-09-26
WO2016190918A2 (en) 2016-12-01
CN107209889B (en) 2022-05-10

Similar Documents

Publication Publication Date Title
WO2016190918A3 (en) Multiple protocol transaction encryption
EP3591931A4 (en) Authentication method, and authentication data processing method and device based on blockchain
EP3788516A4 (en) Encryption card, electronic device, and encryption service method
EP3448076A4 (en) Communication security processing method, device and system
EP3401861A4 (en) Data interaction method and device, and offline credit payment method and device
EP3493046A4 (en) Data processing system, method, and corresponding device
EP3550749A4 (en) Information processing method, device and communication system
EP3540998A4 (en) Information processing method and apparatus, communication device, and communication system
EP3582398A4 (en) Information processing method, apparatus and communication device
EP3684128A4 (en) Information processing method, communication device and storage medium
EP3413255A4 (en) Electronic payment service processing method and device, and electronic payment method and device
EP3429114A4 (en) Information processing method, terminal device, network device, and communication system
EP3570475A4 (en) Information processing method and device, communication device and communication system
EP3567731A4 (en) Information processing method, apparatus and communication device
EP3562119A4 (en) Data processing method, communication device and network device
EP3678026A4 (en) Data check method, device and network card
EP3472784A4 (en) Payment information processing method, apparatus, and user device
EP3584990A4 (en) Data processing method, device, and system
EP3480773A4 (en) Cash processing system, cash processing method, portable terminal and cash processing machine
EP3467744A4 (en) Mobile payment method, device and system
EP3404628A4 (en) Money management device, money processing system, and money processing method
EP3720031A4 (en) Data sending method and device, and data receiving method and device
EP3474146A4 (en) Data processing method, storage system and exchange device
EP3471042A4 (en) Mobile payment method, system on chip and terminal
EP3467753A4 (en) Information system, card device, terminal device, and server device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16800419

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 15539875

Country of ref document: US

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16800419

Country of ref document: EP

Kind code of ref document: A2